Senior Web Application Security Engineer (Java)

India

CloudBees

Boost, secure, and modernize your developer experience and improve productivity by 10x with CloudBees, the #1 Jenkins platform of choice for Enterprises.

View all jobs at CloudBees

Apply now Apply later

Job Type Full-time Description

About CloudBees

CloudBees is the leading software delivery platform that enables enterprises to deliver scalable, compliant, and secure software, empowering developers to do their best work.

Seamlessly integrating into any hybrid and heterogeneous environment, CloudBees is more than a tool—it's a strategic partner in your cloud transformation journey, ensuring security, compliance, and operational efficiency while enhancing the developer experience across your entire software development lifecycle. It allows developers to bring and execute their code anywhere, providing greater flexibility and freedom through fast, self-serve, and secure workflows.


CloudBees supports organizations at every step of their DevSecOps journey, whether using Jenkins on-premise or transitioning software delivery to the cloud and wanting to accelerate their cloud transformation by years. CloudBees is helping customers build the future, today.


About the Role

You will join the Jenkins Security team which has the mission to enhance the security of the open source project Jenkins, and the CloudBees product based on it (CloudBees CI).


What You'll Do

  • Dig into the internals of Jenkins and its plugin system from the perspective of web application security. 
  • Work on the lifecycle of vulnerabilities.
  • Improve our security tooling/process/automation.
  • Provide security education / awareness.


Requirements
  • Bachelor’s degree in Computer Science or related field.
  • 5+ years of professional experience in Java web application development (JavaScript is a plus).
  • Certification or experience in web application security.
  • Experience in scripting is a plus (Groovy, Shell, Python).


We’re invested in you!

We offer generous paid time off to allow our employees time to rest, recharge and to be present with family and friends throughout the year. At CloudBees, we truly believe that the more diverse we are, the better we serve our customers.  A global community like Jenkins demands a global focus from CloudBees. Organizations with greater diversity—gender, racial, ethnic, and global—are stronger partners to their customers.  


Whether by creating more innovative products, or better understanding our worldwide customers, or establishing a stronger cross-section of cultural leadership skills, diversity strengthens all aspects of the CloudBees organization. In the technology industry, diversity creates a competitive advantage.  CloudBees customers demand technologies from us that solve their software development, and therefore their business problems, so that they can better serve their own customers.  CloudBees attributes much of its success to its worldwide work force and commitment to global diversity, which opens our proprietary software to innovative ideas from anywhere. 


Along the way, we have witnessed firsthand how employees, partners, and customers with diverse perspectives and experiences contribute to creative problem-solving and better solutions for our customers and their businesses. 


Scam Notice

Please be aware that there are individuals and organizations that may attempt to scam job seekers by offering fraudulent employment opportunities in the name of CloudBees. These scams may involve fake job postings, unsolicited emails, or messages claiming to be from our recruiters or hiring managers. Please note that CloudBees will never ask for any personal account information, such as cell phone, credit card details or bank account numbers, during the recruitment process. Additionally, CloudBees will never send you a check for any equipment prior to employment.  


All communication from our recruiters and hiring managers will come from official company email addresses (@cloudbees.com) or from Paylocity and will never ask for any payment, fee to be paid or purchases to be made by the job seeker. If you are contacted by anyone claiming to represent CloudBees and you are unsure of their authenticity, please do not provide any personal/financial information and contact us immediately at tahelp@cloudbees.com. 


We take these matters very seriously and will work to ensure that any fraudulent activity is reported and dealt with appropriately. If you feel like you have been scammed in the US, please report it to the Federal Trade Commission at:  https://reportfraud.ftc.gov/#/.   


In Europe, please contact the European Anti-Fraud Office at:  https://anti-fraud.ec.europa.eu/olaf-and-you/report-fraud_en 


Signs of a Recruitment Scam

· Ensure there are no other domains before or after @cloudbees.com.  For example:  “name.dr.cloudbees.com”

· Check any documents for poor spelling and grammar – this is often a sign that fraudsters are at work.

· If they provide a generic email address such as @Yahoo or @Hotmail as a point of contact.

· You are asked for money, an “administration fee”, “security fee” or an “accreditation fee”.

· You are asked for cell phone account information.

· You are asked to cash a check for “equipment” prior to start.

· You are offered a job offer immediately or without an interview.


#LI-Hybrid/Bangalore

Apply now Apply later

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Job stats:  1  0  0

Tags: Application security Automation Cloud Compliance Computer Science DevSecOps Java JavaScript Jenkins Open Source Python Scripting SDLC Vulnerabilities

Perks/benefits: Career development Competitive pay

Region: Asia/Pacific
Country: India

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.